Senior Information Security Engineer, Information Security, South Bend, IN

Job Details

Description

The 1st Source mission is to help our clients achieve security, build wealth, and realize their dreams. This position will play a big part within our Security Operations Center (SOC) in protecting our clients and partners by securing our sensitive data and critical assets from current and emerging threats.

POSITION SUMMARY

The Senior Information Security Engineer position will work both independently and as part of a team to ensure our security posture by designing, implementing, and maintaining our security toolsets. In addition, you will help foster collaboration with IT teams, management, and other stakeholders to promote and embed security throughout the organization.

ESSENTIAL REQUIREMENTS

• Develops and leads incident response strategies.
• Safeguards our integration of AI by identifying and mitigating risks.
• Assesses our current cloud security and propose improvements or solutions.
• Serves as a subject matter expert for security tools, applications, and processes.
• Leads SIEM platform management, log integrations, and detection engineering.
• Champions the integration of cutting-edge security technologies, strategies, and best practices.
• Participates in project initiatives to ensure security alignment.
• Maintains awareness of latest trends and developments within an everchanging threat landscape.
• Provides advanced technical guidance and training to team members.
• Tracks remediation and follow-up of audit and assessments.
• Conducts regular security assessments.
• Proactively identify security gaps and work with both management and staff to address those gaps through processes, policies, or technology.
• Creates detailed design drawings and documentation for implementations, procedures, and remediation plans.
• Responsible for the completion of all compliance training related to the position and continuing professional education to maintain professional security certifications.
• Understands all applicable laws and regulations that apply to the position and comply with the requirements.

NON-ESSENTIAL FUNCTIONS

Perform all other duties as assigned.

EXPERIENCE/SKILLS

Required:

• Five (5) years of experience in security engineering with a strong emphasis on SOAR, detection, and response.
• Seven (7) to ten (10) years of experience in various security domains (e.g., security operations, network security).
• Experience creating solutions to enhance visibility, alerting, and reducing risk within IaaS, PaaS, SaaS, and M365 environments.
• In-depth knowledge of M365 security features and capabilities, with a focus on threat protection, data loss prevention, and compliance.
• Proven experience with tools such as: Nessus, Nmap, BurpSuite, Metasploit, Responder,
• CrackMapExec, Certipy, Impacket, and Bloodhound as well as an in-depth knowledge of open-source security projects and tools.
• Excellent communication and collaboration skills with IT partner teams, business units, and leadership.
• Excellent analytical and problem-solving skills to identify, assess, and mitigate security risks.
• Solid foundational understanding of networking concepts.

Preferred:

• Three (3)+ years of experience in the banking or financial services industries.
• Experience with vulnerability assessment and penetration testing.
• Experience with a wide range of Azure security architecture, services, and tools.
• Strong understanding of security frameworks and compliance regulations (e.g., NIST, PCI DSS).
• Knowledge of cloud service providers and their various technologies and services.
• Intermediate scripting/programming proficiency in various languages, with a preference for Python, for security orchestration, automation, and code analysis.
• Strong organizational and time management skills.
• Strong leadership and project management skills.
• Strong documentation and report writing skills.
• Ability to handle multiple tasks in a fast-paced environment.

EDUCATION

Bachelor’s degree in Cybersecurity, Computer Science, or related discipline preferred.

CERTIFICATIONS

Security certifications such as CISSP, CISM, CEH, OCSP or equivalent preferred.

TRAVEL REQUIREMENTS

Ability to travel to all locations as needed for meetings, projects, seminars, etc.

PHYSICAL DEMANDS

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job Reasonable accommodations may be made to enable individuals to perform the essential functions.

While performing the duties of this job, the employee is regularly required to use hands and fingers to operate keyboard and other office equipment; reach with hands and arms; and talk or hear. The employee frequently is required to sit, stand and walk. The employee is occasionally required to stoop or kneel. The employee may occasionally lift and/or move up to 10 pounds.

EQUIPMENT

MS Office, PC, phone, and standard office equipment

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities

The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information. 41 CFR 60-1.35(c)

Read Full Description